$ rpki-client -vvf rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft File: aUCPaxygKBZoPM5MCOAEkyUZRLI.mft (raw, json) Hash identifier: OPMY+Yig5oDW/iwLks4idI7YoCKKAZbqxytVQTOp2F8= Subject key identifier: 8B:F6:C6:6F:65:FB:C0:F1:EA:91:86:F2:E2:4E:32:F6:6D:CB:8B:8F Authority key identifier: 69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 Certificate issuer: /CN=A91166FC/serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Certificate serial: 0A6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft Manifest number: 0A59 Signing time: Fri 22 Aug 2025 19:51:14 +0000 Manifest this update: Fri 22 Aug 2025 19:51:14 +0000 Manifest next update: Fri 29 Aug 2025 19:51:14 +0000 Files and hashes: 1: aUCPaxygKBZoPM5MCOAEkyUZRLI.crl (hash: iipAxwdN6ckwjrbjiBWAOsB0AV/CHXwt4m0M2XLl6f0=) 2: 834C938A12C711F09998A234C4F9AE02.roa (hash: M4mfahqMzwmq58j++0Teybq9n4Aqspe3mvfksixkbgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:51:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2671 (0xa6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91166FC, serialNumber=69408F6B1CA02816683CCE4C08E00493251944B2 Validity Not Before: Aug 22 19:51:14 2025 GMT Not After : Aug 29 19:51:14 2025 GMT Subject: CN=68a8ca32-4f97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1e:20:17:3f:bd:48:da:05:fc:8c:72:47:95: 8d:9d:f0:eb:27:30:73:05:81:52:d2:f8:17:97:c2: bc:ea:b0:f7:60:1d:2e:c8:87:a3:79:4c:02:2b:35: 7a:e5:86:7b:71:53:3b:ea:3d:63:8a:b9:94:6d:d7: da:77:ce:cd:5b:f4:49:3c:6d:62:75:02:e4:32:76: 59:48:67:24:c2:ef:b0:34:c1:54:7d:17:c0:4b:c0: 92:ef:e2:10:90:11:00:42:18:2a:ff:a8:d2:8e:e0: cd:ad:cc:08:51:45:85:35:d5:ea:45:51:94:ce:48: 39:fd:d4:99:92:c5:d1:2e:ad:11:e7:be:d2:bd:78: a0:ac:75:b0:73:12:80:cf:9f:c1:18:ea:f9:92:c8: 4e:61:82:ea:79:62:28:a8:05:38:cf:7a:1d:9a:79: a4:c2:af:08:12:07:1b:ef:df:72:da:f7:c7:14:af: 34:75:23:5b:5a:0a:e7:55:22:c3:32:d0:24:d6:11: 56:fc:3a:06:35:d9:7f:3b:56:99:cf:ab:c2:74:eb: 41:35:38:59:36:12:a8:ac:af:6b:99:8f:94:5c:f9: 49:e2:1a:e0:f5:9a:fb:ae:34:91:5d:ac:3d:69:b6: d2:f5:b2:cf:d8:53:14:ff:87:f7:fc:1e:ce:f2:4a: 85:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:F6:C6:6F:65:FB:C0:F1:EA:91:86:F2:E2:4E:32:F6:6D:CB:8B:8F X509v3 Authority Key Identifier: keyid:69:40:8F:6B:1C:A0:28:16:68:3C:CE:4C:08:E0:04:93:25:19:44:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aUCPaxygKBZoPM5MCOAEkyUZRLI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91166FC/AB1F4ECA729A11EAABBF9141C4F9AE02/aUCPaxygKBZoPM5MCOAEkyUZRLI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:cb:0f:94:1c:54:3e:78:53:28:23:fb:62:a6:2b:c9:2e:01: 6d:1b:19:40:ee:d4:2f:8f:f8:68:0b:2b:21:61:f4:7f:3a:8f: 9b:51:44:8a:0b:fa:39:78:5c:f0:69:bc:ed:e2:37:1c:77:83: 7b:04:f5:45:86:9f:33:72:bc:aa:51:fe:d8:01:56:46:cd:d8: c9:31:a0:41:f9:87:a4:30:9c:e1:3d:ef:4c:ab:8c:b6:62:41: 2f:24:c5:79:07:b8:d2:37:95:47:82:5b:fe:98:41:09:06:e7: 04:e1:13:23:1b:76:ed:67:dd:7e:f3:05:98:2e:4f:ff:d8:27: 41:10:24:6f:4a:f2:4b:ed:fd:03:c2:81:c0:30:89:b3:43:97: 44:47:e0:ee:8b:da:1d:94:89:5f:5c:8e:7a:13:09:53:0e:ac: 7e:05:9c:e8:05:97:bf:34:e5:25:59:d5:12:a3:15:3f:7d:4f: 4a:67:75:f9:2c:11:9f:9b:65:bd:7a:ea:63:ba:21:d9:b3:b4: 52:00:9f:df:b5:97:e5:49:ea:e5:a5:c3:dd:dc:aa:06:d5:c4: d0:29:67:cd:80:f2:d8:5f:3e:e9:32:76:7c:ff:5b:7d:73:de: d5:55:7e:0d:e0:b8:19:83:d1:f9:3e:c5:84:dd:10:55:48:12: 73:72:8e:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY2RkMxMTAvBgNVBAUTKDY5NDA4RjZCMUNBMDI4MTY2ODNDQ0U0QzA4RTAwNDkz MjUxOTQ0QjIwHhcNMjUwODIyMTk1MTE0WhcNMjUwODI5MTk1MTE0WjAYMRYwFAYD VQQDEw02OGE4Y2EzMi00Zjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwh4gFz+9SNoF/IxyR5WNnfDrJzBzBYFS0vgXl8K86rD3YB0uyIejeUwCKzV6 5YZ7cVM76j1jirmUbdfad87NW/RJPG1idQLkMnZZSGckwu+wNMFUfRfAS8CS7+IQ kBEAQhgq/6jSjuDNrcwIUUWFNdXqRVGUzkg5/dSZksXRLq0R577SvXigrHWwcxKA z5/BGOr5kshOYYLqeWIoqAU4z3odmnmkwq8IEgcb799y2vfHFK80dSNbWgrnVSLD MtAk1hFW/DoGNdl/O1aZz6vCdOtBNThZNhKorK9rmY+UXPlJ4hrg9Zr7rjSRXaw9 abbS9bLP2FMU/4f3/B7O8kqFSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIv2xm9l +8Dx6pGG8uJOMvZty4uPMB8GA1UdIwQYMBaAFGlAj2scoCgWaDzOTAjgBJMlGUSy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjZGQy9BQjFGNEVDQTcy OUExMUVBQUJCRjkxNDFDNEY5QUUwMi9hVUNQYXh5Z0tCWm9QTTVNQ09BRWt5VVpS TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FVQ1BheHlnS0Jab1BNNU1DT0FFa3lVWlJMSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjZGQy9BQjFGNEVDQTcyOUExMUVBQUJCRjkxNDFDNEY5QUUwMi9hVUNQYXh5Z0tC Wm9QTTVNQ09BRWt5VVpSTEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZyw+UHFQ+eFMoI/tipivJLgFtGxlA7tQvj/hoCyshYfR/Oo+bUUSK C/o5eFzwabzt4jccd4N7BPVFhp8zcryqUf7YAVZGzdjJMaBB+YekMJzhPe9Mq4y2 YkEvJMV5B7jSN5VHglv+mEEJBucE4RMjG3btZ91+8wWYLk//2CdBECRvSvJL7f0D woHAMImzQ5dER+Dui9odlIlfXI56EwlTDqx+BZzoBZe/NOUlWdUSoxU/fU9KZ3X5 LBGfm2W9eupjuiHZs7RSAJ/ftZflSerlpcPd3KoG1cTQKWfNgPLYXz7pMnZ8/1t9 c97VVX4N4LgZg9H5PsWE3RBVSBJzco43 -----END CERTIFICATE-----Generated at Sun Aug 24 00:10:26 2025 by rpki-client